IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.4 uses a web link with untrusted references to an external site. A remote attacker could exploit this vulnerability to expose sensitive information or perform unauthorized actions on the victims’ web browser.
References
Link | Resource |
---|---|
https://www.ibm.com/support/pages/node/7240065 |
Configurations
No configuration.
History
18 Jul 2025, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-07-18 19:15
Updated : 2025-07-18 19:15
NVD link : CVE-2025-33014
Mitre link : CVE-2025-33014
CVE.ORG link : CVE-2025-33014
JSON object : View
Products Affected
No product.
CWE
CWE-1022
Use of Web Link to Untrusted Target with window.opener Access